Squert [0] has been brought up a couple of times recently, so I asked
the developer (paulh) to install it on the demo server. If anyone is
interested see-> http://demo.sguil.net/squert/squert.php
>From the project page:
SQueRT was created to make most of the data from Sguil accessible via
a web browser. While most analysts shun the idea of this, it is
especially useful for some people (management, techs) that do not
require the real-time event handling and analytical aspects
(complexity) of the TCL/TK Sguil client. SQueRT is simply meant to
provide a quick overview for non-analysts so that they can address
certain obvious problem areas; for example policy violations.
Bammkkkk
[0] http://squert.sourceforge.net
--
sguil - The Analyst Console for NSM
http://sguil.sf.net